| Revision Date: | 2021-11-19 | Version: | 1 | | Title: | Security update for ardana-ansible, ardana-monasca, documentation-suse-openstack-cloud, openstack-ec2-api, openstack-heat-templates, python-Django, python-monasca-common, rubygem-redcarpet, rubygem-puma (Moderate) | | Description: |
This update for ardana-ansible, ardana-monasca, documentation-suse-openstack-cloud, openstack-ec2-api, openstack-heat-templates, python-Django, python-monasca-common, rubygem-redcarpet, rubygem-puma contains the following fixes:
Security fixes included in this update:
rubygem-redcarpet: CVE-2020-26298: Fixed XSS via HTML escaping when processing quotes. (bsc#1180837)
rubygem-puma: CVE-2021-41136: Fixed build of the Java state machine for parsing HTTP. (bsc#1191681)
Non-security fixes included in this update:
Changes in ardana-ansible: * Patch service.py to skip blank lines.
Changes in ardana-monasca: * Use specific TLS versions for monasca-thresh DB connections. (SOC-11543)
Changes in documentation-suse-openstack-cloud: * CI: only run on DocBook/AsciiDoc paths, make upload fails nonfatal * DC files: Update to 2021 stylesheets (#1327) * CI: Use GitHub Actions
Changes in openstack-ec2-api: * Remove jobs corresponds to obselete featuresets * OpenDev Migration Patch
Changes in openstack-heat-templates: * [ussuri][goal] Update contributor documentation
Changes in python-Django: - Add missing dependency for CVE-2021-31542
Changes in python-monasca-common: - Remove renderspec source service. - Retry publish once on failures. (SOC-11543)
| | Family: | unix | Class: | patch | | Status: | | Reference(s): | 1180837
1191681
CVE-2020-26298
CVE-2021-41136
SUSE-SU-2021:3728-1
| | Platform(s): | SUSE OpenStack Cloud Crowbar 8
| Product(s): | | | Definition Synopsis | | SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information
documentation-suse-openstack-cloud-deployment-8.20210806-1.35.1 is installed
OR documentation-suse-openstack-cloud-supplement-8.20210806-1.35.1 is installed
OR documentation-suse-openstack-cloud-upstream-admin-8.20210806-1.35.1 is installed
OR documentation-suse-openstack-cloud-upstream-user-8.20210806-1.35.1 is installed
OR openstack-ec2-api-5.0.1~dev12-4.9.1 is installed
OR openstack-ec2-api-api-5.0.1~dev12-4.9.1 is installed
OR openstack-ec2-api-metadata-5.0.1~dev12-4.9.1 is installed
OR openstack-ec2-api-s3-5.0.1~dev12-4.9.1 is installed
OR openstack-heat-templates-0.0.0+git.1628179051.7d761bf-3.24.1 is installed
OR python-Django-1.11.29-3.28.1 is installed
OR python-ec2api-5.0.1~dev12-4.9.1 is installed
OR python-monasca-common-2.3.1~dev4-4.9.1 is installed
OR ruby2.1-rubygem-puma-2.16.0-3.15.1 is installed
OR ruby2.1-rubygem-redcarpet-3.2.3-3.3.1 is installed
|
|